HACKTHEBOX HARD
Kasemsh 2026  ·  Nov 08, 2025

Nanocorp

Nanocorp is a Hard difficulty Active Directory machine that exploits CVE-2025-24054 to extract NTLM hashes via malicious .library-ms files. After gaining initial access and password cracking, privilege escalation is achieved through a Check MK Agent vulnerability by crafting a malicious MSI repair payload to execute code as SYSTEM.

Category
Active Directory
Architecture
Windows
Protections
writeup_by
@KasemSH
🔒
Protected Writeup
Enter the password to unlock this writeup.
Incorrect password.